DocumentCode
1890705
Title
DoS-resistant broadcast authentication protocol with low end-to-end delay
Author
Huang, Ying ; He, Wenbo ; Nahrstedt, Klara ; Lee, Whay C.
Author_Institution
Dept. of Comput. Sci., Univ. of Illinois at Urbana-Champaign, Urbana, IL
fYear
2008
fDate
13-18 April 2008
Firstpage
1
Lastpage
6
Abstract
In mission-critical networks, command, alerts, and critical data are frequently broadcast over wireless networks. Broadcast traffic must be protected from malicious attacks, wherein sources are impersonated or broadcast packets are forged. Even though broadcast authentication eliminates such attacks, attackers can still launch denial-of-service attacks by injecting substantive false packets, which consume both communication and computation resources. Due to inevitable proliferation of duplicates of broadcast packets, it is especially important to limit false packet propagation range. Evidently, authenticating each packet before forwarding can effectively contain false packets within one hop. But it results in considerable end-to-end delay penalty on authentic packets. In this paper, we propose a randomized authentication scheme, DREAM, which contains most of false packets in one-hop range of attackers and yet keeps end-to-end delay relatively low. Dream also continuously monitors the contextual threat and dynamically adjusts the trade-off among containment and end-to-end delay performance. Extensive evaluations in ns2 validate our idea.
Keywords
delays; message authentication; protocols; telecommunication security; telecommunication traffic; DoS-resistant broadcast authentication protocol; broadcast over wireless networks; broadcast traffic; denial-of-service attacks; false packet propagation range; low end-to-end delay; Authentication; Bandwidth; Broadcasting; Computer crime; Delay; Helium; Mission critical systems; Protocols; Telecommunication traffic; Wireless networks;
fLanguage
English
Publisher
ieee
Conference_Titel
INFOCOM Workshops 2008, IEEE
Conference_Location
Phoenix, AZ
Print_ISBN
978-1-4244-2219-7
Type
conf
DOI
10.1109/INFOCOM.2008.4544589
Filename
4544589
Link To Document